CVE-2020-18694

Cross Site Request Forgery (CSRF) in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/save_profile".

Link	Resource
https://github.com/ignitedcms/ignitedcms/issues/5	Exploit Third Party Advisory

Configuration 1

cpe:2.3:a:ignitedcms_project:ignitedcms:1.0:*:*:*:*:*:*:*

---

Published : 2021-08-06 07:15

Updated : 2021-08-13 08:06

---

NVD link : CVE-2020-18694

Mitre link : CVE-2020-18694

No products.

CWE-352